Ordinateur infecté

Question

Bonjour, 


Je me permet de poser ce sujet car je pense que mon ordinateur est infecté. 
En effet, celui-ci s'arrête brutalement de manière aléatoire.

Pouvez vous m'aider à voir si il y a une infection ?

Merci.

Sugel · Answer

Bien sur !

>    Téléchargez ICI ZHPDiag.
>    Double-cliquez sur ZHPDiag.exe puis suivez les étapes de l'installation.
>    Cochez la case "Exécuter ZHPDiag" à la fin de l'installation puis cliquez sur [Terminer].
>    L'installation est terminée, 3 icônes sont créées sur votre bureau.
>    Double-cliquez sur le raccourci portant le nom "ZHPDiag" qui se trouve normalement sur votre bureau.
>    Choisissez l'option "Lancer le diagnostic" (une loupe).
>    ZHPDiag va alors analyser le contenu de votre ordinateur à la recherche d'informations sur votre système d'exploitation, la base de registre...
>    A la fin de l'analyse, un rapport est créé directement sur votre bureau, il se nomme ZHPDiag.txt.
>    Allez a cette adresse, et cliquez sur parcourir, sélectionnez le fichier généré precedemment, et cliquez sur"Envoyer le ficiher", puis recupérez l'adresse générée et postez la sur le forum. 
 
Ce problème est apparu progressivement, ou tout d'un coup ?
Si c'est le cas, cela peut aussi être un problème de refroidissement.

sims06 · Answer

Bonjour,

Merci pour votre aide.

Voici le lien du rapport : 
https://pjjoint.malekal.com/files.php?id=ZHPDiag_20130521_b15i13j11o12n7

Le problème est apparut du jour au lendemain.

sims06 · Answer

Si vous voulez d'autres renseignements je peux vous les donner.

Sugel · Answer

Désolé de ma réponse tardive, faute à un administrateur réseau qui a décidé de bloquer pjjoint.
 Tu as modifié quelque chose dans le rapport ? Car il n'est pas valide et j'ai donc du l'analyser à la main.
Bon, je me suis débrouillé sans, mais ça a pris un temps fou.

- Ferme toutes tes applications en cours
- Lance ZHPFix via le raccourci sur ton Bureau, (Si tu es sous Vista ou Windows 7 n'oublie pas clic droit ==> en tant qu'administrateur")
- Si tu ne l'as pas, télécharge le depuis ce lien: https://www.zebulon.fr/telechargements/securite/systeme/zhpfix.html
- Copie/colle les lignes en gras suivantes:
 
 
SysRestore
G0 - GCSP: Preference [User Data\Default][HomePage] http://www.searchnu.com
G2 - GCE: Preference [User Data\Default] [aaaapnjeoabhkpdiinmomghdncekhiib] Ask Toolbar v.7.13.1.0 (Désactivé)   =>Toolbar.Ask
G2 - GCE: Preference [User Data\Default] [ihflimipbcaljfnojhhknppphnnciiif] Facemoods v.1.4.1 (Désactivé)   =>Adware.Facemoods
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoods.com   =>Adware.Facemoods
P2 - FPN: [HKCU] [{@alibaba.com/alisetup;version=1.0}] - (.alibaba - alibaba setup one click.) -- C:\Users\User\AppData\Local\Alibaba\AliSetup\0.1.0.52
pAliSetupOneClick.dll
R0 - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.searchnu.com
R1 - HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoods.com   =>Adware.Facemoods
O1 - Hosts: 79.142.75.66 thebestspinner.com
O1 - Hosts: 79.142.75.66 www.thebestspinner.com3
O2 - BHO: Ask Toolbar BHO [64Bits] - {D4027C7F-154A-4066-A1AD-4243D8127440} . (.Ask - Ask Toolbar.) -- C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll   =>Toolbar.Ask
O4 - HKUS\S-1-5-21-3409760535-2386646616-4292448363-1000\..\Run: [AdobeBridge] Clé orpheline
[MD5.A77ABB05ADD34E1AF4543FA7AFAC52B8] [APT] [Scheduled Update for Ask Toolbar] (...) -- C:\Program Files (x86)\Ask.com\UpdateTask.exe   [137864]   =>Toolbar.Ask
O42 - Logiciel: Ask Toolbar - (.Ask.com.) [HKLM][64Bits] -- {86D4B82A-ABED-442A-BE86-96357B70F4FE}   =>Toolbar.Ask
[HKLM\Software\DataMngr]   =>PUP.Datamngr
[HKCU\Software\Datamngr]   =>PUP.Datamngr
O53 - SMSR:HKLM\...\startupreg\facemoods  [Key] . (...) -- C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.11\facemoodssrv.exe (.not file.)   =>Adware.Facemoods
O69 - SBI: prefs.js [User - 7g3ul6f7.default] user_pref("extensions.facemoods.DNSErrUrl", "http://start.facemoods.com/?a=ddrnw&f=5");   =>Adware.Facemoods
O69 - SBI: prefs.js [User - 7g3ul6f7.default] user_pref("extensions.facemoods.dfltSrchPrvdr", "Facemoods Search");   =>Adware.Facemoods
O69 - SBI: prefs.js [User - 7g3ul6f7.default] user_pref("extensions.facemoods.DNSErrUrl", "http://start.facemoods.com/?a=ddrnw&f=5");   =>Adware.Facemoods
O69 - SBI: prefs.js [User - 7g3ul6f7.default] user_pref("extensions.facemoods.aflt", "ddrnw");   =>Adware.Facemoods
O69 - SBI: prefs.js [User - 7g3ul6f7.default] user_pref("extensions.facemoods.dfltSrch", true);   =>Adware.Facemoods
O69 - SBI: prefs.js [User - 7g3ul6f7.default] user_pref("extensions.facemoods.dfltSrchPrvdr", "Facemoods Search");   =>Adware.Facemoods
O69 - SBI: prefs.js [User - 7g3ul6f7.default] user_pref("extensions.facemoods.dnsErr", true);   =>Adware.Facemoods
O69 - SBI: prefs.js [User - 7g3ul6f7.default] user_pref("extensions.facemoods.firstRun", true);   =>Adware.Facemoods
O69 - SBI: prefs.js [User - 7g3ul6f7.default] user_pref("extensions.facemoods.hmpg", true);   =>Adware.Facemoods
O69 - SBI: prefs.js [User - 7g3ul6f7.default] user_pref("extensions.facemoods.hmpgUrl", "http://start.facemoods.com/?a=ddrnw");   =>Adware.Facemoods
O69 - SBI: prefs.js [User - 7g3ul6f7.default] user_pref("extensions.facemoods.id", "a010bcc400000000000000173fb3bf4e");   =>Adware.Facemoods
O69 - SBI: prefs.js [User - 7g3ul6f7.default] user_pref("extensions.facemoods.instlDay", "15321");   =>Adware.Facemoods
O69 - SBI: prefs.js [User - 7g3ul6f7.default] user_pref("extensions.facemoods.mntz", "");   =>Adware.Facemoods
O69 - SBI: prefs.js [User - 7g3ul6f7.default] user_pref("extensions.facemoods.newTab", true);   =>Adware.Facemoods
O69 - SBI: prefs.js [User - 7g3ul6f7.default] user_pref("extensions.facemoods.newTabUrl", "http://start.facemoods.com/?a=ddrnw&f=2");   =>Adware.Facemoods
O69 - SBI: prefs.js [User - 7g3ul6f7.default] user_pref("extensions.facemoods.prtnrId", "facemoods.com");   =>Adware.Facemoods
O69 - SBI: prefs.js [User - 7g3ul6f7.default] user_pref("extensions.facemoods.searchProviderAdded", true);   =>Adware.Facemoods
O69 - SBI: prefs.js [User - 7g3ul6f7.default] user_pref("extensions.facemoods.sid", "638f8a8941dc4911b3cd531a0af10aa2");   =>Adware.Facemoods
O69 - SBI: prefs.js [User - 7g3ul6f7.default] user_pref("extensions.facemoods.tlbrSrchUrl", "http://start.facemoods.com/?a=ddrnw&f=3");   =>Adware.Facemoods
O69 - SBI: prefs.js [User - 7g3ul6f7.default] user_pref("extensions.facemoods.vrsn", "1.4.17.11");   =>Adware.Facemoods
O69 - SBI: SearchScopes [HKCU] {0D7562AE-8EF6-416d-A838-AB665251703A} - (Facemoods Search) - http://start.facemoods.com   =>Adware.Facemoods
[HKLM\Software\Classes\Interface\{3f607e46-0d3c-4442-b1de-de7fa4768f5c}]   =>Adware.RecordNRip
[HKLM\Software\Wow6432Node\Classes\Interface\{3f607e46-0d3c-4442-b1de-de7fa4768f5c}]   =>Adware.RecordNRip
[HKLM\Software\Classes\TypeLib\{93e3d79c-0786-48ff-9329-93bc9f6dc2b3}]   =>Adware.RecordNRip
[HKLM\Software\Classes\Interface\{fe0273d1-99df-4ac0-87d5-1371c6271785}]   =>Adware.RecordNRip
[HKLM\Software\Wow6432Node\Classes\Interface\{fe0273d1-99df-4ac0-87d5-1371c6271785}]   =>Adware.RecordNRip
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0D7562AE-8EF6-416d-A838-AB665251703A}]   =>Adware.Facemoods
[HKLM\Software\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]   =>Adware.AskSBAR
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}]   =>Adware.IMBooster
[HKLM\Software\Classes\Interface\{542FA950-C57A-4E17-B3E1-D935DFE15DEE}]   =>Adware.Facemoods
[HKLM\Software\Classes\Interface\{5B035F86-41B5-40F1-AAAD-3D219F30244E}]   =>Adware.Facemoods
[HKLM\Software\Classes\AppID\{5B1881D1-D9C7-46df-B041-1E593282C7D0}]   =>Adware. BullseyeToolbar
[HKLM\Software\Wow6432Node\Classes\AppID\{5B1881D1-D9C7-46df-B041-1E593282C7D0}]   =>Adware. BullseyeToolbar
[HKLM\Software\Classes\Interface\{6365AC7B-9920-4D8B-AF5D-3BDFEAC340A8}]   =>Adware.Facemoods
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{64182481-4F71-486b-A045-B233BD0DA8FC}]   =>Adware.Facemoods
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{64182481-4F71-486b-A045-B233BD0DA8FC}]   =>Adware.Facemoods
[HKLM\Software\Classes\Interface\{6A934270-717F-4BC3-BA59-BC9BED47A8D2}]   =>Adware.Facemoods
[HKLM\Software\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}]   =>Toolbar.Ask
[HKLM\Software\Wow6432Node\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}]   =>Toolbar.Ask
[HKLM\Software\Classes\Interface\{74C012C4-00FB-4F04-9AFB-4AD5449D2018}]   =>Adware.Facemoods
[HKLM\Software\Classes\Interface\{79B13431-CCAC-4097-8889-D0289E5E924F}]   =>Adware.Facemoods
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}]   =>Toolbar.Ask
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}]   =>Toolbar.Skype
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}]   =>Toolbar.Skype
[HKLM\Software\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}]   =>Toolbar.Ask
[HKLM\Software\Wow6432Node\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}]   =>Toolbar.Ask
[HKLM\Software\Classes\Interface\{981334CB-7B8B-431F-B86D-67B7426B125B}]   =>Adware.Facemoods
[HKLM\Software\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}]   =>Adware.AskSBAR
[HKLM\Software\Wow6432Node\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}]   =>Adware.AskSBAR
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}]   =>Adware.Bandoo
[HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}]   =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2410}]   =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{9D717F81-9148-4F12-8568-69135F087DB0}]   =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{9D717F81-9148-4F12-8568-69135F087DB0}]   =>Adware.Bandoo
[HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}]   =>Adware.AskSBAR
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}]   =>Adware.AskSBAR
[HKLM\Software\Classes\Interface\{A9379648-F6EB-4F65-A624-1C10411A15D0}]   =>Adware.Facemoods
[HKLM\Software\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}]   =>Toolbar.Ask
[HKLM\Software\Wow6432Node\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}]   =>Toolbar.Ask
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]   =>Toolbar.Skype
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]   =>Toolbar.Skype
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]   =>Toolbar.Skype
[HKLM\Software\Classes\Interface\{C1C2FC43-F042-4F17-AEDB-C5ABF3B42E4B}]   =>Adware.Facemoods
[HKLM\Software\Classes\Interface\{C8D424EF-CB21-49A0-8659-476FBAB0F8E8}]   =>Toolbar.Babylon
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}]   =>Adware.AskSBAR
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}]   =>Adware.AskSBAR
[HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]   =>Adware.AskSBAR
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DB4E9724-F518-4DFD-9C7C-78B52103CAB9}]   =>Adware. BullseyeToolbar
[HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{DB4E9724-F518-4DFD-9C7C-78B52103CAB9}]   =>Adware. BullseyeToolbar
[HKLM\Software\Classes\Interface\{F16AB1DB-15C0-4456-A29E-4DF24FB9E3D2}]   =>Adware.Facemoods
[HKLM\Software\Classes\Interface\{F7EC6286-297C-4981-9DCC-FD7F57BC24C9}]   =>Adware.Facemoods
[HKLM\Software\Classes\AppID\GenericAskToolbar.DLL]   =>Adware.AskSBAR
[HKLM\Software\Classes\GenericAskToolbar.ToolbarWnd]   =>Adware.AskSBAR
[HKLM\Software\Classes\GenericAskToolbar.ToolbarWnd.1]   =>Adware.AskSBAR
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED]   =>Toolbar.Ask
[HKLM\Software\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF]   =>Toolbar.AVGSearch
[HKLM\Software\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF]   =>Toolbar.AVGSearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF]   =>Toolbar.AVGSearch
[HKLM\Software\Wow6432Node\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF]   =>Toolbar.AVGSearch
[HKLM\Software\Wow6432Node\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF]   =>Toolbar.AVGSearch
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E]   =>Toolbar.Ask
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9]   =>Adware.MyWebSearch
[HKCU\Software\APN]   =>Toolbar.Ask
[HKLM\Software\Wow6432Node\APN]   =>Toolbar.Ask
[HKCU\Software\Ask.com]   =>Toolbar.AskBar
[HKCU\Software\AppDataLow\Software\AskToolbar]   =>Toolbar.AskTBar
[HKLM\Software\Wow6432Node\AskToolbar]   =>Toolbar.AskTBar
[HKCU\Software\DataMngr]   =>Adware.Bandoo
[HKLM\Software\DataMngr]   =>Adware.Bandoo
[HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\Facemoods]   =>Adware.Facemoods
[HKLM\Software\Wow6432Node\Microsoft\Tracing\Searchqu Toolbar uninstall_RASAPI32]   =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Microsoft\Tracing\Searchqu Toolbar uninstall_RASMANCS]   =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Microsoft\Tracing\SearchquMediaBar_RASAPI32]   =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Microsoft\Tracing\SearchquMediaBar_RASMANCS]   =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Microsoft\Tracing\SetupDataMngr_Searchqu_RASAPI32]   =>Adware.Bandoo
[HKLM\Software\Wow6432Node\Microsoft\Tracing\SetupDataMngr_Searchqu_RASMANCS]   =>Adware.Bandoo
[HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}]   =>Toolbar.AskBar
[HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0D7562AE-8EF6-416D-A838-AB665251703A}]   =>Adware.Facemoods
[HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0CFE535C35F99574E8340BFA75BF92C2]   =>Toolbar.Ask
[HKLM\Software\Classes\Interface\{78888F8B-D5E4-43CE-89F5-C8C18223AF64}]   =>Adware.Facemoods
[HKLM\Software\Classes\Interface\{8B8558F6-DC26-4F39-8417-34B8934AA459}]   =>Adware.Facemoods
[HKLM\Software\Classes\Interface\{9E393F82-2644-4AB6-B994-1AD39D6C59EE}]   =>Adware.Facemoods
[HKLM\Software\Classes\Interface\{A3A2A5C0-1306-4D1A-A093-9CECA4230002}]   =>Adware.Facemoods
[HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]:{D4027C7F-154A-4066-A1AD-4243D8127440}   =>Adware.AskSBAR
[HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Toolbar]:{D4027C7F-154A-4066-A1AD-4243D8127440}   =>Adware.AskSBAR
C:\Program Files (x86)\Ask.com   =>Toolbar.AskBar
C:\Users\User\AppData\LocalLow\AskToolbar   =>Toolbar.AskTBar
C:\Users\User\AppData\Roaming\Mozilla\Firefox\Profiles\7g3ul6f7.default\Extensions	oolbar@ask.com   =>Toolbar.AskTBar
O90 - PUC: "A28B4D68DEBAA244EB686953B7074FEF" . (.Ask Toolbar.) -- c:\program files (x86)\ask.com\fv_409d.ico   =>Toolbar.Ask
[HKLM\Software\XP Mozim]
O43 - CFD: 10/11/2011 - 14:21:19 - [0,148] ----D C:\Users\User\AppData\Local\APN
O69 - SBI: prefs.js [User - 7g3ul6f7.default] user_pref("browser.search.order.1", "Search Results");
O69 - SBI: prefs.js [User - 7g3ul6f7.default] user_pref("browser.search.selectedEngine", "Search Results");
O69 - SBI: SearchScopes [HKCU] {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} - (Search The Web) - https://www.mystart.com/
O69 - SBI: SearchScopes [HKCU] {9BB47C17-9C68-4BB3-B188-DD9AF0FD2410} [DefaultScope] - (Search Results) - https://www.search.ask.com/web?l=dis&q=&o=APN10655A&apn_dtid=%5EBND101%5EYY%5EFR&shad=s_0048&gct=hp&apn_ptnrs=%5EAG5&d=101-0&lang=en&atb=sysid%3D101%3Auid%3D58c9331d816657ac%3Asrc%3Dhmp%3Ao%3DAPN10655A%3Atg%3D&p2=%5EAG5%5EBND101%5EYY%5EFR
FirewallRAZ
EmptyCLSID
EmptyTemp
EmptyFlash 

 
et colle les dans l'espace libre de ZHP Fix.
Poste le rapport dans ton prochain message.
 
 
------------------------------------------------------------------------------------
"La peur mène à la colère. La colère mène à la haine. Et la haine ... mène à la souffrance." - Yoda

sims06 · Answer

Bonjour,

Merci pour votre réponse.
Une fois que les lignes sont copiées dans ZHP Fix, il faut cliquer sur quoi ?

Merci.

sims06 · Answer

Bonjour,

Le soucis est que je n'ai pas de bouton GO :
http://img812.imageshack.us/img812/7382/sanstitre2dx.jpg

Cordialement,

sims06 · Answer

Bonjour,

Merci, ça a marché.
Voici le rapport : https://pjjoint.malekal.com/files.php?id=20130522_g10s6q14j9f12

sims06 · Answer

Voici le rapport  : 
https://pjjoint.malekal.com/files.php?id=ZHPDiag_20130522_s13p13b9z10u15

Ordinateur infecté

8 réponses

Votre réponse

Newsletters